<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<title>
  Release 2.4.3
</title>
</head>
<body bgcolor="#ffffff">
<h1>Release 2.4.3</h1>

<p>
The following changes were made in this release:
</p>

<h2>Enhancements:</h2>
<ul>
<li>Issue 1576 : Define URL path elements as 'non structural'</li>
<li>Issue 1711 : Feature request: Option to specify number of token to be generated.</li>
<li>Issue 1768 : Update to use a more recent user-agent</li>
<li>Issue 1894 : ZAP only scans "User-Agent", "Referer", and "Host" request headers</li>
<li>Issue 1911 : Search AJAX spider requests</li>
<li>Issue 1913 : Pass all params across to zap.sh - debian package</li>
<li>Issue 1914 : Multiple add-on directories</li>
<li>Issue 1920 : Report the host:port ZAP is listening on in daemon mode, or exit if it cant</li>
<li>Issue 1927 : Enhancement: Break only for in-scope URLs.</li>
<li>Issue 1944 : Chart responses per second in ascan progress</li>
<li>Issue 1953 : Allow to spider a context through the ZAP API</li>
<li>Issue 1962 : Install and update add-ons from the command line</li>
<li>Issue 1975 : RC4-SHA SSL cipher suite not supported</li>
<li>Issue 1980 : Add ZAP CLI to Docker images</li>
<li>Issue 1985 : Bring up the Modify dialog if the user doubles on a row in a AbstractMultipleOptionsBaseTablePanel</li>
<li>Issue 2009 : Add Online links to the FAQ and Newsletter pages</li>
<li>Issue 2084 : Warn users if they are probably using out of date versions</li>
<li>Issue 2086 : Report request counts per plugin</li>
<li>Issue 2088 : Support an 'update all' button for installing all updated add-ons</li>
<li>Issue 2094 : Support a '-addoninstallall' command line option</li>
<li>Issue 2102 : Allow ajax spider options to be set via the API</li>
</ul>

<h2>Bug fixes:</h2>
<ul>
<li>Issue 1070 : Breaking on custom URL with query parameters does not work.</li>
<li>Issue 1555 : SAXParseException while generating the report</li>
<li>Issue 1617 : ZAP 2.4.0 throws HeadlessExceptions when running in daemon mode on headless machine</li>
<li>Issue 1877 : fix path to .ZAP_JVM.properties in zap.sh</li>
<li>Issue 1893 : Regression: Can't disable and enable specific scanners through the API</li>
<li>Issue 1910 : API does not return content in the expected encoding, on errors</li>
<li>Issue 1917 : Request and Response tabs dont scale the text</li>
<li>Issue 1939 : Scripts - Save Button Enablement Issue</li>
<li>Issue 1949 : Script with missing type prevents scripts and templates from being loaded</li>
<li>Issue 1950 : Connection closed without response, with an Authentication script with errors</li>
<li>Issue 1951 : Exception when trying to add users before loading an authentication script</li>
<li>Issue 1960 : Active Scan dialogue might use outdated scan policy</li>
<li>Issue 1969 : Issues with installation of scanners</li>
<li>Issue 1970 : Installed add-on dependencies might not be taken into account when installing add-ons</li>
<li>Issue 1973 : Returned HAR/list does not contain correct redirection messages</li>
<li>Issue 1981 : Spider might not report the correct number of URIs found</li>
<li>Issue 2005 : Active scanning incorrectly performed on sibling nodes</li>
<li>Issue 2044 : Issues in Hirschberg's algorithm implementation</li>
<li>Issue 2045 : Dont copy old configs if -dir option used</li>
<li>Issue 2052 : Authentication changes done through the API not saved to session</li>
</ul>



<h2>See also</h2>
<table>
<tr><td>&nbsp;&nbsp;&nbsp;&nbsp;</td><td><a href="../intro.html">Introduction</a></td><td>the introduction to ZAP</td></tr>
<tr><td>&nbsp;&nbsp;&nbsp;&nbsp;</td><td><a href="releases.html">Releases</a></td><td>the full set of releases</td></tr>
<tr><td>&nbsp;&nbsp;&nbsp;&nbsp;</td><td><a href="../credits.html">Credits</a></td><td>the people and groups who have made this release possible</td></tr>
</table>
</body>
</html>
